sys: keep cap_net_bind_service capability

This will be needed to allow opening of NTP server socket after root privileges are dropped.
2025-12-03 18:05:06 -05:00 · 2015-01-06 11:17:47 +01:00
parent 6d1dda0fad
commit 40bbe2539b
1 changed files with 1 additions and 1 deletions
--- a/sys_linux.c
+++ b/sys_linux.c
@@ -397,7 +397,7 @@ SYS_Linux_DropRoot(char *user)
    LOG_FATAL(LOGF_SysLinux, "setuid(%d) failed", pw->pw_uid);
  }

-  if ((cap = cap_from_text("cap_sys_time=ep")) == NULL) {
+  if ((cap = cap_from_text("cap_net_bind_service,cap_sys_time=ep")) == NULL) {
    LOG_FATAL(LOGF_SysLinux, "cap_from_text() failed");
  }